Proactive Computing | Optimizing IT for usability, performance and reliability since 1997

Category: #Cybersecurity (Page 3 of 16)

New Connecticut Cybersecurity Laws Enacted

“…The new Connecticut law prohibits punitive damages being assessed against organizations in the wake of a data breach if they’ve implemented “reasonable” security controls. The law states that the court may not assess such damages if the organization created, maintained and complied with a written cybersecurity program that offers administrative, technical and physical safeguards for protecting personally identifiable information as well as restricted information.

The new state law stipulates that organizations must conform with revisions and amendments to industry-recognized cybersecurity frameworks, laws and regulations within six months after any changes are published.

“Cybersecurity is largely unregulated today; there is no national statutory minimum standard of information security, making it difficult to improve cybersecurity on a wholesale basis,” says Curtis Dukes, executive vice president and general Manager, security best practices, at the Center for Internet Security. “Connecticut’s cybersecurity bill introduces a critical interim step – incentivizing the adoption of cyber best practices … to improve cybersecurity and protect citizen data.”…

Read More: 2 State Cybersecurity, Data Privacy Laws Enacted

Iran’s railway system fell prey to a cyberattack this weekend


Iran faced its own spate of cyberattacks this weekend. Reuters and The Guardian report that Iran’s railway train system and transportation websites suffered a “cyber-disruption” (according to state media) on the weekend. Portal sites went down, although it’s not clear just how badly the train system were affected. Officials claimed that only the train displays were compromised with fake messages, but the Fars news agency claimed there was “unprecedented chaos” that included cancellations and delays.

The sites and train systems were back to normal as of Monday morning.

It’s not certain who was behind the attack, although telecom minister Mohammad Javad Azari-Jahromi alerted people to the threat of ransomware if they didn’t address security vulnerabilities. Iran has historically blamed some cyberattacks on the US and Israel, although ransomware is more often the work of criminal organizations.

The US and other countries have typically pinned cyberattacks on Iran, and both sides have engaged in relatively quiet digital warfare. However, it’s not clear that’s the cause here — this could just represent ‘ordinary’ hackers exploiting weak points in Iran’s infrastructure, whether to make money or create havoc.

Proactive Computing found this story and shared it with you.
The Article Was Written/Published By: Jon Fingas

New York City launches a cyberdefense center in Manhattan


Infrastructure cyberattacks are quickly becoming a significant problem in the US, and New York City is opening a facility that could help fend off those potentially dangerous hacks. The Wall Street Journalreports that NYC has launched a long-in-the-making Cyber Critical Services and Infrastructure (CCSI) operations center in Manhattan to defend against major cyberattacks.

The initiative’s members are a mix of public and private sector organizations that include Amazon, the Federal Reserve Bank, IBM, the New York Police Department and multiple healthcare providers. If a cyberattack hits, they’ll ideally cooperate closely to both overcome the attack and muster a city response if the digital offensive hobbles NYC’s infrastructure.

Politicians first floated the idea in 2017, but CCSI has been a strictly virtual initiative until now.

NYC is the first US city to have such a cyberdefense center, but it might not be the last. Cities like Atlanta and Baltimore have reeled from ransomware attacks in recent years, in numerous cases taking a long time (and a lot of money) to recover. A coordinated operations facility could help those cities bounce back quickly from a wide variety of hacks, or at least mitigate the damage.

Proactive Computing found this story and shared it with you.
The Article Was Written/Published By: Jon Fingas

How to Update Windows Right Now to Fix PrintNightmare | Digital Trends

Run Windows Update and Reboot to make sure the latest patches are installed.

No matter what version of Windows you are running, you need to update NOW. If you are truly paranoid, shutdown your Print Spooler service, and set it to Manual start. You’ll need to start it to print to a network printer, but you will protect your system and network from this serious threat. Check out the article from Digital Trends below.

To Our Customers: If your servers are managed by Proactive Computing, they are already protected from the PrintNightmare threat. But please follow the instructions below to update your Windows PCs and Laptops today.

How to Update Windows Right Now to Fix PrintNightmare | Digital Trends

Why Doesn’t Windows 11 Support My CPU?

Move over TPM 2.0: Windows 10’s CPU generation requirements are even more confusing. Windows 11 requires at least an 8th-generation Intel CPU or AMD Ryzen 2000 processor. Microsoft can’t seem to clearly explain why, and the company is already back-peddling on this.

Read This Article on How-To Geek ›

Proactive Computing found this story and shared it with you.
The Article Was Written/Published By: Chris Hoffman

PSA: Unplug Your WD My Book Live Drive Before It’s Maliciously Erased

The WD My Book LiveWestern Digital

If you own a WD My Book Live drive, you should unplug it from your router immediately. Several users on the Western Digital forum report that their drives were factory reset through remote commands, leading to the permanent loss of all data. In a statement, Western Digital blames this problem on “malicious software.”

Note: Only the WD My Book Live is impacted by this problem. Other Western Digital NAS devices appear to be fine.

The WD My Book Live is a Network-Attached Storage (or NAS) device with a twist. It sits behind a firewall and communicates through Western Digital’s cloud servers to provide remote storage for users. Western Digital stopped supporting the My Book Live back in 2015, but the company continues to run its My Book Live servers for dedicated users.

At a glance, it may seem that the 6-year lapse in firmware or security updates left My Book Live users vulnerable to attacks. But because so many My Book Live drives were attacked within the span of just a few hours, many people wonder if Western Digital’s servers were hacked. (It’s worth noting that some victims had cloud services disabled on their device.)

A statement from Western Digital doesn’t really clarify the issue:

Western Digital has determined that some My Book Live devices are being compromised by malicious software. In some cases, this compromise has led to a factory reset that appears to erase all data on the device. The My Book Live device received its final firmware update in 2015. We understand that our customers’ data is very important. At this time, we recommend you disconnect your My Book Live from the Internet to protect your data on the device. We are actively investigating and we will provide updates to this thread when they are available.

Users who posted their device data logs on the Western Digital forum show that the remote, global attack started on the afternoon of June 23rd (or the morning of the 24th, depending on your time zone). Some victims found that their password changed after the reset, while others can still access their drive but lost all of their files.

Again, it’s hard to tell what’s going on here, so My Book Live users should disconnect their drive now and shop for a replacement (it hasn’t been updated in 6 years, it’s just not a safe storage solution anymore). If your My Book Live is factory reset, then the data is probably impossible to recover—some victims found success with the PhotoRec recovery tool, though these claims haven’t been verified.

Source: WD Forum Community via Ars Technica

Proactive Computing found this story and shared it with you.
The Article Was Written/Published By: Andrew Heinzman

Microsoft Vulnerabilities Report Shows Largest Uptick

Windows-Vulnerabilities-Featured.jpg Is it any wonder Microsoft is rumored to be launching Windows 11, with the Microsoft Vulnerabilities Report showing the largest uptick since the inception of the report? Who could blame Microsoft for wanting to dump Windows 10 and start all over with Windows 11? Microsoft Vulnerabilities Report News of vulnerabilities never seems to make users feel at ease. And while we’ve heard much about the Windows vulnerabilities, we tend to think all operating systems have vulnerabilities – and they do! But some have more – many more – than others. The 2021 Microsoft Vulnerabilities Report… Read more14561097.gif

Proactive Computing found this story and shared it with you.
The Article Was Written/Published By: Laura Tucker

How to Reduce the Financial Impact of a Data Breach

Whether there is a ransom or not, data breaches always have financial implications. Organizations may face regulatory penalties, operational losses, and reputational damage. Careful planning can save you time and money.

Read This Article on CloudSavvy IT ›

Proactive Computing found this story and shared it with you.
The Article Was Written/Published By: Dave McKay

Ransomware attacks ‘are here to stay,’ Commerce secretary says


Commerce Secretary Gina Raimondo said Sunday that ransomware attacks “are here to stay,” and that businesses should plan accordingly.

“The first thing we have to recognize,” she said, “is this is the reality, and we should assume and businesses should assume, that these attacks are here to stay and, if anything, will intensify. And so just last week the White House sent out a letter broadly to the business community urging the business community to do more.”

Speaking on ABC’s “This Week With George Stephanopoulos,” the former governor of Rhode Island declined to blame Vladimir Putin’s Russia outright in answering a question on whether the Biden administration should look to punish Russia, which is believed to be the source of some or all of these attacks.

“We are evaluating all the options and we won’t stand for a nation supporting or turning a blind eye to a criminal enterprise,” she said. “And as the president has said, we’re considering all of our options.”

She added: “This week when the president meets with Putin and other world leaders, this will be at the top of the agenda.”

In a ransomware attack, hackers seize control of a business or organization’s computer system by exploiting weaknesses in the security system, then lock up the entire system until a “ransom” is paid. Raimondo said one way to stymie international hackers is to approve Biden’s proposed infrastructure plan.

“Certain components of the American Jobs Plan provide for investments to shore up the nation’s cyber infrastructure,” she told Stephanopoulos.

Raimondo argued that the good news in all this was that businesses can make relatively simple changes to protect themselves against such attacks.

“Some very simple steps like two-factor authentication, having proper backups and backup technology, can be enormously helpful against a wide variety of these attacks. So it is clear that the private sector needs to be more vigilant, by the way, including small- and medium-sized companies,” she said.

Proactive Computing found this story and shared it with you.
The Article Was Written/Published By: David Cohen

« Older posts Newer posts »